General
-
Target
3d8c44788bd93f97c6d90e58610c1592_JaffaCakes118
-
Size
31KB
-
MD5
3d8c44788bd93f97c6d90e58610c1592
-
SHA1
1e07f05f4d3170726572e15ff4252342b7d687cc
-
SHA256
ac72e70c1d9e744962224366c415e90d0caa0b41778d76e23250cedecca516e7
-
SHA512
ac6bfb92160496eac4bdebb5bfc64081bd073ae87cb25540206330f766eaef34e79ebffb928dc550c0894460150fc695bbc141a996b64058e3aa964c2f26abfd
-
SSDEEP
768:y7woqkZlH/azx1+ta+q3U97v8CQmIDUu0tiiAj:l4qSpnQVk6j
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
MyBot
C2
o.tpc.ngrok.io:12841
Mutex
0004769b1c4e7f72cd027f8ae5c656f1
Attributes
-
reg_key
0004769b1c4e7f72cd027f8ae5c656f1
-
splitter
Y262SUCZ4UJJ
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
3d8c44788bd93f97c6d90e58610c1592_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections